Cockpit 漏洞列表

Agentejo Cockpit 0.10.2 contains a reflected cross-site scripting vulnerability due to insufficient sanitization of the to parameter in the /auth/login route, which allows for injection of arbitrary JavaScript code into a web page's content.

Cockpit before 0.6.1 allows an attacker to inject custom PHP code and achieve Remote Command Execution via registerCriteriaFunction in lib/MongoLite/Database.php, as demonstrated by values in JSON data to the /auth/check or /auth/requestreset URI.

Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php check function. The $eq operator matches documents where the value of a field equals the specified value.

Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php resetpassword function of the Auth controller.

Agentejo Cockpit prior to 0.12.0 is vulnerable to NoSQL Injection via the newpassword method of the Auth controller, which is responsible for displaying the user password reset form.

Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq/cockpit prior to 2.6.4.

Versions of the package cockpit-hq/cockpit before 2.4.1 are vulnerable to Arbitrary File Upload where an attacker can use different extensions to bypass the upload filter.

Agentejo Cockpit 0.10.2 contains a reflected cross-site scripting vulnerability due to insufficient sanitization of the to parameter in the /auth/login route, which allows for injection of arbitrary JavaScript code into a web page's content.

Cockpit before 0.6.1 allows an attacker to inject custom PHP code and achieve Remote Command Execution via registerCriteriaFunction in lib/MongoLite/Database.php, as demonstrated by values in JSON data to the /auth/check or /auth/requestreset URI.

Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php check function. The $eq operator matches documents where the value of a field equals the specified value.

Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php resetpassword function of the Auth controller.

Agentejo Cockpit prior to 0.12.0 is vulnerable to NoSQL Injection via the newpassword method of the Auth controller, which is responsible for displaying the user password reset form.

Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq/cockpit prior to 2.6.4.

Versions of the package cockpit-hq/cockpit before 2.4.1 are vulnerable to Arbitrary File Upload where an attacker can use different extensions to bypass the upload filter.

Cockpit 是一个自托管、灵活且用户友好的无头内容平台，用于创建自定义数字体验。Cockpit存在任意文件上传漏洞，通过弱口令登录后可以上传任意文件获取服务器权限。

Cockpit 是一个自托管、灵活且用户友好的无头内容平台，用于创建自定义数字体验。Cockpit存在默认口令漏洞，攻击者可通过默认口令漏洞控制整个平台，使用管理员权限操作核心的功能。

Cockpit 是一个自托管、灵活且用户友好的无头内容平台，用于创建自定义数字体验。Cockpit 存在文件上传漏洞，攻击者可通过该漏洞在服务器端任意上传代码，写入后门，获取服务器权限，进而控制整个web服务器。

Cockpit 是一个自托管、灵活且用户友好的无头内容平台，用于创建自定义数字体验。Cockpit 存在默认口令漏洞，攻击者可通过默认口令漏洞控制整个平台，使用管理员权限操作核心的功能。

0.12.0之前的Agentejo Cockpit允许通过Auth控制器的Controller/Auth.phpresetpassword函数进行NoSQL注入

0.12.0之前的Agentejo Cockpit通过Auth控制器的newpassword方法容易受到NoSQL注入的攻击，该方法负责显示用户密码重置表单

0.11.2之前的Agentejo Cockpit允许通过Auth控制器的Controller/Auth.phpresetpassword函数进行NoSQL注入

0.11.2之前的AgentejoCockpit允许通过Controller/Auth.php检查函数进行NoSQL注入。$eq操作符匹配字段值等于指定值的文档。

Cockpit CMS是Agentejo开发的内容管理平台，该CMS<0.6.1版本密码重置处存在远程命令执行漏洞，攻击者可以利用该漏洞执行任意命令，进而控制服务器

Apollo（阿波罗）是携程框架部门研发的分布式配置中心，能够集中化管理应用不同环境、不同集群的配置，配置修改后能够实时推送到应用端，并且具备规范的权限、流程治理等特性，适用于微服务配置管理场景。